upload and authentication

stigotd

Hi
I’m having problems making a script to log into my server [with my uname and pword] So that I can upload images [jpg].
I’ve used
if (!$PHP_AUTH_USER) {
Header("WWW-authenticate: basic realm=\"User Check\"");
Header("HTTP/1.0 401 Unauthorized");}

But I’m not sure what to do with them then, is there a standard procedure for passing them to the server for verification.

Thanks Trev

jonsof

I would prefer to choose another way for authentication

You have the form (username, password)


$result=mysql_query("SELECT * FROM users WHERE username='$_POST[username]' AND password='$_POST[password]'");

$rows=mysql_num_rows($result);

If(rows==1) { then processing begins}

else {you are not registered}

cgraz

Using stigotd's method, you can do the same thing using .htaccess. I think it's a lot easier.

Create two files

.htaccess
.htpasswd

(notice no .txt or similar extensions)

.htaccess should lookk like this

AuthUserFile /home/webs/digimaxg/http/html/admin/1/admin/.htpasswd
AuthName "Secure Area"
AuthType Basic
<Limit GET>
require valid-user
</Limit>

where /home/webs/digimaxg/http/html/admin/1/admin is the path to .htpasswd

.htpasswd looks like this

digimax:CdD36Ig7Uq4Jk

digimax is the username, CdD36Ig7Uq4Jk is the encryupted password, : seperates them. But essentially, looks like this:

user:pass
user2:pass2
user3:pass3

and you can add as many users as you want. If you go to http://www.virtualave.net/t/development/html/passencrypt

Type the password in the form, hit encrypt, and it will encrypt the password. Then copy and paste (make sure you don't get spaces) that in the format above.

user:encrypted_pass

Put both those files in the directory you want to protect and whalaa!

Cgraz